$ rpki-client -vvf rpki-rsync.idnic.net/repo/IDNIC/1/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer File: BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.cer (raw, json) Hash identifier: uZO4wZ5LxWtmdOr+pIiSevlMppY14BYljuXICmoep28= Subject key identifier: BC:2F:FB:53:46:9C:81:8C:FF:E7:C5:1F:3A:A4:AA:B5:5C:E3:2C:42 Authority key identifier: 41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E Certificate issuer: /CN=A91862140000/serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Certificate serial: 6CF052EC6A4CA95CEA3D5DEA4C0090790CBB5B60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Manifest: rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.mft caRepository: rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/ Notify URL: https://rpki-rrdp.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 May 2026 00:34:13 +0000 Certificate not after: Sun 02 May 2027 00:39:13 +0000 Subordinate resources: IP: 203.175.124.0/23 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:f0:52:ec:6a:4c:a9:5c:ea:3d:5d:ea:4c:00:90:79:0c:bb:5b:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=419A85CDF8A430516946869D1C492037D6BC6E9E Validity Not Before: May 3 00:34:13 2026 GMT Not After : May 2 00:39:13 2027 GMT Subject: CN=BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:d5:2c:17:55:e7:5b:3d:0d:ed:74:26:19: 40:c2:b1:69:cc:07:46:24:00:f5:04:93:0b:88:85: 68:b9:4d:b1:02:28:0d:b4:c0:b4:45:e0:91:6f:c7: 69:a0:d7:31:ae:14:ba:91:9b:2c:a5:93:43:36:71: 3b:ac:48:ad:21:f2:9a:1b:62:35:9e:6d:45:a0:a0: 16:05:1b:37:f7:23:d0:a5:bb:e6:c3:3e:71:19:25: 7e:77:22:75:ab:cf:05:50:0c:42:a4:29:8f:79:5b: d3:ed:02:3a:a2:28:2a:61:0b:3d:e2:8d:66:50:e4: bc:29:bc:48:d8:b4:12:ab:72:2d:21:0b:e9:64:89: a6:cb:8d:fd:47:46:5d:40:7e:70:29:57:b8:c2:12: fb:af:28:19:fb:d5:cc:5a:ee:ed:d3:89:86:14:b8: 97:38:4d:8f:62:52:d6:42:00:da:b5:03:d7:cf:09: 5a:d2:09:21:4c:bc:1f:da:33:2e:5d:70:b0:f2:94: 7a:36:51:4a:4f:12:14:77:38:69:86:c8:51:c5:57: 44:38:a5:b6:48:4c:74:f1:8a:98:94:38:29:c0:6b: a8:3e:bb:5a:27:77:d3:04:8f:53:16:aa:06:71:e8: 0e:ff:08:48:d4:8a:95:31:06:4e:5e:f4:9f:27:e7: 23:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BC:2F:FB:53:46:9C:81:8C:FF:E7:C5:1F:3A:A4:AA:B5:5C:E3:2C:42 X509v3 Authority Key Identifier: keyid:41:9A:85:CD:F8:A4:30:51:69:46:86:9D:1C:49:20:37:D6:BC:6E:9E X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer Subject Information Access: CA Repository - URI:rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/ RPKI Manifest - URI:rsync://rpki-rsync.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/BC2FFB53469C818CFFE7C51F3AA4AAB55CE32C42.mft RPKI Notify - URI:https://rpki-rrdp.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.124.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:e2:88:6b:af:ad:b1:fd:e5:9d:1b:80:05:21:cb:64:d4:f7: 45:32:d0:18:77:61:8b:de:a3:ec:d4:37:a4:d5:0f:ce:50:b2: 5f:bc:af:26:6f:c2:d5:de:ba:8b:3c:16:f3:d2:6d:50:a7:dd: ac:4c:5a:05:56:c8:b1:cc:40:6d:4d:29:af:35:a0:ba:b9:a0: c8:c7:3a:41:26:73:41:cb:0b:f5:d5:a0:22:c5:e7:5b:6f:ef: b5:63:da:e3:31:ac:8d:1d:f8:97:f7:ac:de:4c:68:9c:fd:c8: f2:80:e7:a4:92:c8:b8:05:a4:16:ed:b9:90:42:f5:25:fc:6f: 9c:5b:0a:e8:83:1a:6b:7b:e3:a3:8f:ef:58:8a:e7:b5:3f:45: 65:43:77:25:0e:14:b7:89:71:bd:6d:87:a7:45:a0:d5:0d:40: 61:e4:f2:eb:d6:19:dd:6e:16:eb:ab:33:cf:77:eb:b9:e2:f4: f5:48:67:0a:29:10:3c:f8:31:9d:31:b7:42:d6:d6:f8:12:a3: bd:41:ab:55:bc:1e:8c:cd:fd:b2:e3:94:b9:29:93:aa:1a:0c: d9:a3:5f:18:3e:07:bc:fd:46:85:c5:e7:db:57:6e:c9:70:69: 7b:01:ba:14:e3:a7:fa:a5:0a:e1:9e:85:1e:1f:99:f1:d2:9a: e5:a0:d6:ce -----BEGIN CERTIFICATE----- MIIFxjCCBK6gAwIBAgIUbPBS7GpMqVzqPV3qTACQeQy7W2AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg0MTlBODVDREY4 QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFMB4XDTI2MDUwMzAwMzQxM1oX DTI3MDUwMjAwMzkxM1owMzExMC8GA1UEAxMoQkMyRkZCNTM0NjlDODE4Q0ZGRTdD NTFGM0FBNEFBQjU1Q0UzMkM0MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUN1SwXVedbPQ3tdCYZQMKxacwHRiQA9QSTC4iFaLlNsQIoDbTAtEXgkW/H aaDXMa4UupGbLKWTQzZxO6xIrSHymhtiNZ5tRaCgFgUbN/cj0KW75sM+cRklfnci davPBVAMQqQpj3lb0+0COqIoKmELPeKNZlDkvCm8SNi0EqtyLSEL6WSJpsuN/UdG XUB+cClXuMIS+68oGfvVzFru7dOJhhS4lzhNj2JS1kIA2rUD188JWtIJIUy8H9oz Ll1wsPKUejZRSk8SFHc4aYbIUcVXRDiltkhMdPGKmJQ4KcBrqD67Wid30wSPUxaq BnHoDv8ISNSKlTEGTl70nyfnI/sCAwEAAaOCArkwggK1MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLwv+1NGnIGM/+fFHzqkqrVc4yxCMB8GA1UdIwQYMBaAFEGa hc34pDBRaUaGnRxJIDfWvG6eMA4GA1UdDwEB/wQEAwIBBjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vSUROSUMvMS80 MTlBODVDREY4QTQzMDUxNjk0Njg2OUQxQzQ5MjAzN0Q2QkM2RTlFLmNybDB+Bggr BgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQv cmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RWnFG emZpa01GRnBSb2FkSEVrZ045YThicDQuY2VyMIIBLAYIKwYBBQUHAQsEggEeMIIB GjBVBggrBgEFBQcwBYZJcnN5bmM6Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBv LzUyYjM4Zjc5LTI2ZDMtNDQ4OS1hNDdkLTBhODgwNWI0NDhhZS8wLzCBgQYIKwYB BQUHMAqGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby81MmIzOGY3 OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMC9CQzJGRkI1MzQ2OUM4MThD RkZFN0M1MUYzQUE0QUFCNTVDRTMyQzQyLm1mdDA9BggrBgEFBQcwDYYxaHR0cHM6 Ly9ycGtpLXJyZHAuaWRuaWMubmV0L3JyZHAvbm90aWZpY2F0aW9uLnhtbDAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy698MA0GCSqGSIb3DQEBCwUAA4IBAQAM4ohrr62x/eWdG4AFIctk1PdFMtAY d2GL3qPs1Dek1Q/OULJfvK8mb8LV3rqLPBbz0m1Qp92sTFoFVsixzEBtTSmvNaC6 uaDIxzpBJnNBywv11aAixedbb++1Y9rjMayNHfiX96zeTGic/cjygOekksi4BaQW 7bmQQvUl/G+cWwrogxpre+Ojj+9Yiue1P0VlQ3clDhS3iXG9bYenRaDVDUBh5PLr 1hndbhbrqzPPd+u54vT1SGcKKRA8+DGdMbdC1tb4EqO9QatVvB6Mzf2y45S5KZOq GgzZo18YPge8/UaFxefbV27JcGl7AboU46f6pQrhnoUeH5nx0prloNbO -----END CERTIFICATE-----Generated at Tue May 12 22:38:54 2026 by rpki-client